Unrated severityNVD Advisory· Published Nov 9, 2009· Updated Jun 16, 2026
CVE-2009-3912
CVE-2009-3912
Description
Directory traversal vulnerability in index.php in TFTgallery 0.13 allows remote attackers to read arbitrary files via a ..%2F (encoded dot dot slash) in the album parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- cpe:2.3:a:tftgallery:tftgallery:0.13:*:*:*:*:*:*:*
Patches
Vulnerability mechanics
References
3- packetstormsecurity.org/0911-exploits/tftgallery-traversal.txtnvdExploit
- www.securityfocus.com/bid/36899nvdExploit
- secunia.com/advisories/37156nvdVendor Advisory
News mentions
0No linked articles in our index yet.